MESSAGING NEWSWIRE - Email Security - February 23, 2007




	Subscribe to this newsletter February 23, 2007 FEATURE EDITORIAL News from RSA 2007 The 16th annual RSA Conference took place February 5-9 at San Francisco’s Moscone Center. The show attracted more than 15,000 attendees and had a notable list of keynote speakers including General Colin Powell, Bill Gates, John Thompson, Larry Ellison, and Homeland Security Secretary Michael Chertoff among many others. Numerous announcements were made, more than we can cover in this newswire installment. RSA show organizers publicized that the traditional February show is moving to April 7-11 in 2008. Read on for a few news highlights from vendors in the messaging space. And do not miss the opportunity to save $200 towards The Authentication and Online Trust Summit noted at the end of this newswire. BorderWare Technologies BorderWare announced a new approach to securing and servicing VoIP that they say is cost effective and highly scalable to meet the needs of today’s service provider and enterprise markets. As VoIP security evolves, service providers and enterprises are realizing the need to secure their converged applications including VoIP, Video and other real-time applications, to protect from attacks such as toll fraud, service disruptions and Spam over Internet Telephony (SPIT). BorderWare’s SIPassure is a software-based, non-proprietary solution, combining features of an SBC (session border controller) with the security of a traditional firewall and the application awareness of an Application Layer Gateway (ALG). SIPassure is architected to run on standard operating systems such as Solaris and Linux, enabling enterprises and service providers to deploy using standard off-the-shelf hardware from vendors including Sun and HP instead of the proprietary purpose built platforms used by traditional SBC vendors. The BorderWare SIPassure solution is available now. Entrust, Inc. Entrust introduced its plans to combat online fraudsters via an Open Fraud Intelligence Network focused on collecting and collaborating vital fraud data to benefit all organizations that leverage the online channel. This effort is intended to help reinforce the layered security approach Entrust says customers need to help protect their enterprise, government and consumer users. It also helps bring to fruition the open standard for sharing fraud the company co-authored with VeriSign and submitted to the Internet Engineering Task Force (IETF) last fall. Current fraud networks are either proprietary to one vendor or cater to a single vertical market rather than serving all organizations vulnerable to cybercrime from a vendor-agnostic environment. According to Entrust its Open Fraud Intelligence Network will serve as a powerful, next-generation weapon in the war on online fraud by helping to deliver critical, consolidated information from a variety of sources, including the sharing of fraud patterns that have been experienced by global online retailers, federal agencies and healthcare groups, among others. The Entrust Open Fraud Intelligence Network is expected to be available in the first quarter of 2007. FaceTime Communications, Inc. FaceTime, a provider of solutions for securing and managing IM, P2P and Web-based applications, announced a new partnership with Skype to deliver end-to-end security, management and control of Skype to ensure its safe and productive use within organizations. FaceTime Internet Security Edition lets businesses manage how Skype is used across their networks, by combining gateway security and control with comprehensive endpoint management of Skype software. The FaceTime solution uses open application programming interfaces developed and made available by Skype for its business partners through Skype's IT management framework. FaceTime's managed Skype solution provides IT and network administrators with the ability to manage the use of Skype on their network with granular controls to choose which elements of Skype software their employees can use. For example, a company may allow voice services, but not file sharing or supernode capabilities. IronPort Systems, Inc. IronPort announced the availability of the IronPort C650 email security appliance. The new IronPort C650 combines IronPort AsyncOS, a proprietary operating system optimized for email, with significant advances in hardware to double the scanning throughput offered by the previous generation platform. Protecting against spam in 2007—ranging from more complex image-based spam with increased focus on attack diversity to other new spammer techniques—will require greater levels of innovation and responsiveness says the company. To this end, anti-spam products will need more processing power as they try to score millions of messages on a broad range of attributes in a very short amount of time. The IronPort C650 email security appliance is now available. Mirapoint Mirapoint announced its RazorGate email security appliance for IBM BladeCenter. The company says this collaboration combines Mirapoint’s best in class email security technology with IBM’s industry leading BladeCenter to offer large enterprise and service provider customers a high performance, intensely scalable solution for delivering email security throughout their infrastructure. With Mirapoint RazorGate and IBM BladeCenter, organizations can scale email security for their network even in extremely high growth, high demand environments. According to the company, RazorGate running on BladeCenter also provides best of breed anti-virus, anti-spam, unique edge blocking and user-based junk mail management that offers air-tight email security no matter how large the organization. The product will be available in the second half of 2007. PGP Corporation PGP, an enterprise data security and encryption solution provider, announced results from a new study by The Ponemon Institute on enterprise needs, motivations, uses, and strategies for protecting data with encryption. The key findings of the 2007 Annual Study: U.S. Enterprise Encryption Trends demonstrated a shift toward the strategic planning and use of encryption technology across enterprises. PGP Corporation sponsored the U.S. study. The Ponemon Institute is conducting similar research in the United Kingdom and Germany, with results to be issued later this year. For more information or to receive a copy of the study, click here. Proofpoint, Inc. Large-enterprise messaging security provider Proofpoint announced that the company continues to see strong adoption of its policy-driven email encryption solutions across the company's core enterprise, healthcare, financial services, university and government markets. The Proofpoint Regulatory Compliance, Proofpoint Digital Asset Security, and Proofpoint Secure Messaging modules work together says the company to add powerful, policy-driven encryption features to the Proofpoint Protection Server software and Proofpoint Messaging Security Gateway appliance. Proofpoint's secure messaging solution automatically and dynamically applies encryption or decryption based on an organization's policies, right at the gateway. As a result, the company says end users don't need to take any special actions to take advantage of encryption features and compliance and content security policies are consistently and accurately applied on an as-needed basis. The Proofpoint Secure Messaging module is powered by Voltage IBE technology from Voltage Security or through integration with other popular third-party encryption solutions. Secure Computing Corporation Secure Computing announced Webwasher 6.5, which provides reputation-based URL filtering for corporate users surfing the Web, and offers bi-directional protection for enterprise networks to stop inbound threats such as spyware, phishing or other malware, and prevent outbound threats related to sensitive data leaks. Webwasher 6.5 incorporates global intelligence from the company's reputation system, TrustedSource. Like a credit agency provides credit scores to enable reliable commerce, TrustedSource provides source-based reputation scores for URLs, domains and IPs as content-based reputation scores for web page content, messages, attachments and images. Webwasher 6.5 is available as software or on a line of appliances and is available now. Secure Computing also introduced Sidewinder 7.0. The company says Sidewinder 7.0 is the industry's first and only firewall to incorporate reputation technology to provide proactive and reliable protection. In addition to the integration of the TrustedSource reputation technology, Sidewinder 7.0 includes significant enhancements for performance, policy management and overall security. The product will be available March 2007. Sendmail, Inc. Sendmail announced enhancements to its Trusted Unified Messaging Platform (TrUMP) with a number of significant product releases designed to support the growing need for bi-directional, policy-centric message processing and protection. The company unveiled three next-generation products, which they say ensures trusted messaging against both external and internal threats. These new product releases include Sentrion 2.0, Flow Control 2.0 and Mailstream Manager 2.4. The releases feature significant updates including zero hour malware protection and IP reputation services to guard organizations from external threats like spam, viruses, phishing and spyware. To support the growing need for compliance and outbound message processing, the new releases provide built-in clientless encryption and policies for HIPAA and GLBA to prevent confidential information leakage from within. Sendmail Sentrion 2.0, Flow Control 2.0 and Mailstream Manager 2.4 are available now. Tumbleweed Communications Corp. Tumbleweed announced the addition of the MailGate Desktop Messenger to its product line, allowing for streamlined desktop-to-desktop encryption for internal corporate users. According to the company, with the addition of Desktop Messenger, Tumbleweed extends its broad line of secure messaging solutions to provide robust, easy-to-use encryption technology for sensitive internal emails. Desktop Messenger integrates with email clients, such as Outlook, to provide “push button” desktop-to-desktop encryption. To encrypt important messages, end users must only press a “Send Secure” button installed in Outlook to activate encryption on the intended message. For messages to be sent externally, Desktop Messenger works in conjunction with Tumbleweed’s Secure Messenger encryption technology at the network gateway to provide comprehensive multi-layered encryption for messages leaving the enterprise. Tumbleweed expects Desktop Messenger to be available in March 2007. Voltage Security, Inc. Voltage Security, Inc., an enterprise privacy management company, made several announcements at RSA. The company introduced the Voltage Data Protection System, which they describe as “a powerful and comprehensive solution to persistently protect sensitive data at all times throughout the network.” This offering addresses a critical need for enterprises to ensure sensitive data is encrypted as it is collected, transmitted and stored throughout its processing lifecycle. The company also announced its Voltage Security Network (VSN), a new software-as-a-service (SAAS) solution. According to Voltage, VSN revolutionizes email security by breaking the barriers to widespread adoption of email encryption through the introduction of a proven, easy-to-use solution for the millions of non-technical email users. Voltage also unveiled Voltage SecureMail V3. This latest version includes more than two-dozen major enhancements that improve user experience and further drive down operating costs. The Voltage Data Protection System is currently under trial at several enterprise customer sites and will be generally available in the first half of 2007. VSN is available immediately. Voltage SecureMail V3 is currently available and includes Voltage SecureMail Gateway, and Voltage Key Management Server in a single appliance. IN THE NEWS The Authentication and Online Trust Summit Register today and save $200 The Authentication and Online Trust Summit is designed for marketers and IT security executives responsible for protecting their brand, email and infrastructure across online channels, as well as maintaining consumer trust and confidence. Being held April 18-19 at the Sheraton Boston Hotel in Boston, organizers say that over the course of the intensive two-day program attendees will learn the latest trends and best practices from myriad of experts. To learn more about the agenda or the speakers, visit www.aotalliance.org/summit2007. Please be sure to mention source code: MESSN1 when registering. Messaging News is pleased to be a member of the AOTA. Register by today, February 23 to save US$200. We welcome your ideas and your news for Messaging Newswire’s News & Trends in Email Security. Let us know what you think by sending your comments to editorial@messagingnews.com. Written or compiled by Stephanie Jordan. All trademarks are the property of their respective owners. For marketing information on this newsletter or other Messaging News products contact jvictor@messagingnews.com